authelia/test/features/step_definitions/hooks.ts

import {setDefaultTimeout, After, Before, BeforeAll, AfterAll} from "cucumber";
import fs = require("fs");
import BluebirdPromise = require("bluebird");
import ChildProcess = require("child_process");
import { UserDataStore } from "../../../server/src/lib/storage/UserDataStore";
import { CollectionFactoryFactory } from "../../../server/src/lib/storage/CollectionFactoryFactory";
import { IMongoClient } from "../../../server/src/lib/connectors/mongo/IMongoClient";
import { TotpHandler } from "../../../server/src/lib/authentication/totp/TotpHandler";
import Speakeasy = require("speakeasy");
import Request = require("request-promise");
import { TOTPSecret } from "../../../server/types/TOTPSecret";
import Environment = require("../../environment");
import { MongoClient } from "../../../server/src/lib/connectors/mongo/MongoClient";
import { GlobalLogger } from "../../../server/src/lib/logging/GlobalLogger";
import { GlobalLoggerStub } from "../../../server/src/lib/logging/GlobalLoggerStub.spec";

setDefaultTimeout(30 * 1000);

const exec = BluebirdPromise.promisify<any, any>(ChildProcess.exec);

const includes = [
  "docker-compose.yml",
  "example/compose/docker-compose.base.yml",
  "example/compose/mongo/docker-compose.yml",
  "example/compose/redis/docker-compose.yml",
  "example/compose/nginx/backend/docker-compose.yml",
  "example/compose/nginx/portal/docker-compose.yml",
  "example/compose/smtp/docker-compose.yml",
  "example/compose/httpbin/docker-compose.yml",
  "example/compose/ldap/docker-compose.yml"
]

const environment = new Environment.Environment(includes);

BeforeAll(function() {
  return environment.setup(10000);
});

AfterAll(function() {
  return environment.cleanup()
});

Before(function () {
  this.jar = Request.jar();
})

After(function () {
  return this.driver.quit();
});

function createRegulationConfiguration(): BluebirdPromise<void> {
  return exec("\
  cat config.template.yml | \
  sed 's/find_time: [0-9]\\+/find_time: 15/' | \
  sed 's/ban_time: [0-9]\\+/ban_time: 4/' > config.test.yml \
  ");
}

function createInactivityConfiguration(): BluebirdPromise<void> {
  return exec("\
  cat config.template.yml | \
  sed 's/expiration: [0-9]\\+/expiration: 10000/' | \
  sed 's/inactivity: [0-9]\\+/inactivity: 5000/' > config.test.yml \
  ");
}

function createSingleFactorConfiguration(): BluebirdPromise<void> {
  return exec("\
  cat config.template.yml | \
  sed 's/default_method: two_factor/default_method: single_factor/' > config.test.yml \
  ");
}

function createCustomTotpIssuerConfiguration(): BluebirdPromise<void> {
  return exec("\
  cat config.template.yml | \
  sed 's/issuer: authelia.com/issuer: custom.com/' > config.test.yml \
  ");
}

function declareNeedsConfiguration(tag: string, cb: () => BluebirdPromise<void>) {
  Before({ tags: "@needs-" + tag + "-config", timeout: 20 * 1000 }, function () {
    return cb()
      .then(function () {
        return exec("./scripts/example-commit/dc-example.sh -f " +
          "./example/compose/authelia/docker-compose.test.yml up -d authelia &&" +
          " sleep 3");
      })
  });

  After({ tags: "@needs-" + tag + "-config", timeout: 20 * 1000 }, function () {
    return exec("rm config.test.yml")
      .then(function () {
        return exec("./scripts/example-commit/dc-example.sh up -d authelia && sleep 3");
      });
  });
}

declareNeedsConfiguration("regulation", createRegulationConfiguration);
declareNeedsConfiguration("inactivity", createInactivityConfiguration);
declareNeedsConfiguration("single_factor", createSingleFactorConfiguration);
declareNeedsConfiguration("totp_issuer", createCustomTotpIssuerConfiguration);

function registerUser(context: any, username: string) {
  let secret: TOTPSecret;
  const mongoClient = new MongoClient({
    url: "mongodb://localhost:27017",
    database: "authelia",
    auth: {
      username: "authelia",
      password: "authelia"
    }
  }, new GlobalLoggerStub());
  const collectionFactory = CollectionFactoryFactory.createMongo(mongoClient);
  const userDataStore = new UserDataStore(collectionFactory);

  const generator = new TotpHandler(Speakeasy);
  secret = generator.generate("user", "authelia.com");
  return userDataStore.saveTOTPSecret(username, secret)
    .then(function () {
      context.totpSecrets["REGISTERED"] = secret.base32;
      return mongoClient.close();
    });
}

function declareNeedRegisteredUserHooks(username: string) {
  Before({ tags: "@need-registered-user-" + username, timeout: 15 * 1000 }, function () {
    return registerUser(this, username);
  });

  After({ tags: "@need-registered-user-" + username, timeout: 15 * 1000 }, function () {
    this.totpSecrets["REGISTERED"] = undefined;
    return BluebirdPromise.resolve();
  });
}

function needAuthenticatedUser(context: any, username: string): BluebirdPromise<void> {
  return context.visit("https://login.example.com:8080/logout")
    .then(function () {
      return context.visit("https://login.example.com:8080/");
    })
    .then(function () {
      return registerUser(context, username);
    })
    .then(function () {
      return context.loginWithUserPassword(username, "password");
    })
    .then(function () {
      return context.useTotpTokenHandle("REGISTERED");
    })
    .then(function () {
      return context.clickOnButton("Sign in");
    });
}

function declareNeedAuthenticatedUserHooks(username: string) {
  Before({ tags: "@need-authenticated-user-" + username, timeout: 15 * 1000 }, function () {
    return needAuthenticatedUser(this, username);
  });

  After({ tags: "@need-authenticated-user-" + username, timeout: 15 * 1000 }, function () {
    this.totpSecrets["REGISTERED"] = undefined;
    return BluebirdPromise.resolve();
  });
}

function declareHooksForUser(username: string) {
  declareNeedRegisteredUserHooks(username);
  declareNeedAuthenticatedUserHooks(username);
}

const users = ["harry", "john", "bob", "blackhat"];
users.forEach(declareHooksForUser);
Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`import {setDefaultTimeout, After, Before, BeforeAll, AfterAll} from "cucumber";`
Parameterize authentication regulation via configuration file. Both for flexibility and for testing purposes. 2017-09-02 23:25:43 +00:00			`import fs = require("fs");`
			`import BluebirdPromise = require("bluebird");`
			`import ChildProcess = require("child_process");`
Split client and server Client and server now have their own tsconfig so that the transpilation is only done on the part that is being modified. It also allows faster transpilation since tests are now excluded from tsconfig. They are compiled by ts-node during unit tests execution. 2017-10-06 22:09:42 +00:00			`import { UserDataStore } from "../../../server/src/lib/storage/UserDataStore";`
			`import { CollectionFactoryFactory } from "../../../server/src/lib/storage/CollectionFactoryFactory";`
			`import { IMongoClient } from "../../../server/src/lib/connectors/mongo/IMongoClient";`
Implement session inactivity timeout This timeout will prevent an attacker from using a session that has been inactive for too long. This inactivity timeout combined with the timeout before expiration makes a good combination of security mechanisms to prevent session theft. If no activity timeout is provided, then the feature is disabled and only session expiration remains as a protection. 2017-10-16 22:38:10 +00:00			`import { TotpHandler } from "../../../server/src/lib/authentication/totp/TotpHandler";`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`import Speakeasy = require("speakeasy");`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`import Request = require("request-promise");`
Fix compilation and unit tests 2018-05-16 22:06:07 +00:00			`import { TOTPSecret } from "../../../server/types/TOTPSecret";`
Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`import Environment = require("../../environment");`
Implement retry mechanism for broken connections to mongo (#258) Before this patch, when Authelia started, if Mongo was not up and running, Authelia failed to connect and never retried. Now, everytime Authelia faces a broken connection, it tries to reconnect during the next operation. 2018-08-19 14:51:36 +00:00			`import { MongoClient } from "../../../server/src/lib/connectors/mongo/MongoClient";`
			`import { GlobalLogger } from "../../../server/src/lib/logging/GlobalLogger";`
			`import { GlobalLoggerStub } from "../../../server/src/lib/logging/GlobalLoggerStub.spec";`
Parameterize authentication regulation via configuration file. Both for flexibility and for testing purposes. 2017-09-02 23:25:43 +00:00
Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`setDefaultTimeout(30 * 1000);`
Stabilize integration tests by increasing timeouts 2017-09-08 21:18:20 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`const exec = BluebirdPromise.promisify<any, any>(ChildProcess.exec);`
Parameterize authentication regulation via configuration file. Both for flexibility and for testing purposes. 2017-09-02 23:25:43 +00:00
Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`const includes = [`
			`"docker-compose.yml",`
			`"example/compose/docker-compose.base.yml",`
			`"example/compose/mongo/docker-compose.yml",`
			`"example/compose/redis/docker-compose.yml",`
			`"example/compose/nginx/backend/docker-compose.yml",`
			`"example/compose/nginx/portal/docker-compose.yml",`
			`"example/compose/smtp/docker-compose.yml",`
			`"example/compose/httpbin/docker-compose.yml",`
			`"example/compose/ldap/docker-compose.yml"`
			`]`

Implement retry mechanism for broken connections to mongo (#258) Before this patch, when Authelia started, if Mongo was not up and running, Authelia failed to connect and never retried. Now, everytime Authelia faces a broken connection, it tries to reconnect during the next operation. 2018-08-19 14:51:36 +00:00			`const environment = new Environment.Environment(includes);`

Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`BeforeAll(function() {`
Implement retry mechanism for broken connections to mongo (#258) Before this patch, when Authelia started, if Mongo was not up and running, Authelia failed to connect and never retried. Now, everytime Authelia faces a broken connection, it tries to reconnect during the next operation. 2018-08-19 14:51:36 +00:00			`return environment.setup(10000);`
Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`});`

			`AfterAll(function() {`
Implement retry mechanism for broken connections to mongo (#258) Before this patch, when Authelia started, if Mongo was not up and running, Authelia failed to connect and never retried. Now, everytime Authelia faces a broken connection, it tries to reconnect during the next operation. 2018-08-19 14:51:36 +00:00			`return environment.cleanup()`
Add tests for minimal configuration 2018-08-09 20:24:02 +00:00			`});`

Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`Before(function () {`
			`this.jar = Request.jar();`
			`})`
Parameterize authentication regulation via configuration file. Both for flexibility and for testing purposes. 2017-09-02 23:25:43 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`After(function () {`
			`return this.driver.quit();`
			`});`
Implement session inactivity timeout This timeout will prevent an attacker from using a session that has been inactive for too long. This inactivity timeout combined with the timeout before expiration makes a good combination of security mechanisms to prevent session theft. If no activity timeout is provided, then the feature is disabled and only session expiration remains as a protection. 2017-10-16 22:38:10 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`function createRegulationConfiguration(): BluebirdPromise<void> {`
			`return exec("\`
			`cat config.template.yml \| \`
			`sed 's/find_time: [0-9]\\+/find_time: 15/' \| \`
			`sed 's/ban_time: [0-9]\\+/ban_time: 4/' > config.test.yml \`
			`");`
			`}`

			`function createInactivityConfiguration(): BluebirdPromise<void> {`
			`return exec("\`
			`cat config.template.yml \| \`
			`sed 's/expiration: [0-9]\\+/expiration: 10000/' \| \`
			`sed 's/inactivity: [0-9]\\+/inactivity: 5000/' > config.test.yml \`
			`");`
			`}`

			`function createSingleFactorConfiguration(): BluebirdPromise<void> {`
			`return exec("\`
			`cat config.template.yml \| \`
			`sed 's/default_method: two_factor/default_method: single_factor/' > config.test.yml \`
			`");`
			`}`

			`function createCustomTotpIssuerConfiguration(): BluebirdPromise<void> {`
			`return exec("\`
Update config.template.yml to include TOTP issuer name * Update config.template.yml and hook.ts This fixes issue reported in #251. 2018-08-19 08:59:47 +00:00			`cat config.template.yml \| \`
			`sed 's/issuer: authelia.com/issuer: custom.com/' > config.test.yml \`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`");`
			`}`

			`function declareNeedsConfiguration(tag: string, cb: () => BluebirdPromise<void>) {`
			`Before({ tags: "@needs-" + tag + "-config", timeout: 20 * 1000 }, function () {`
			`return cb()`
			`.then(function () {`
			`return exec("./scripts/example-commit/dc-example.sh -f " +`
Add original nginx-ingress template to compare with the new one 2018-03-16 07:40:48 +00:00			`"./example/compose/authelia/docker-compose.test.yml up -d authelia &&" +`
Fix issues with integration tests in master 2018-07-24 21:36:04 +00:00			`" sleep 3");`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`})`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`});`

			`After({ tags: "@needs-" + tag + "-config", timeout: 20 * 1000 }, function () {`
			`return exec("rm config.test.yml")`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`.then(function () {`
Fix issues with integration tests in master 2018-07-24 21:36:04 +00:00			`return exec("./scripts/example-commit/dc-example.sh up -d authelia && sleep 3");`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`});`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`});`
			`}`

			`declareNeedsConfiguration("regulation", createRegulationConfiguration);`
			`declareNeedsConfiguration("inactivity", createInactivityConfiguration);`
			`declareNeedsConfiguration("single_factor", createSingleFactorConfiguration);`
			`declareNeedsConfiguration("totp_issuer", createCustomTotpIssuerConfiguration);`

			`function registerUser(context: any, username: string) {`
Fix compilation and unit tests 2018-05-16 22:06:07 +00:00			`let secret: TOTPSecret;`
Enable authentication to Mongo and Redis. (#263) * Fix issue in unit test of IdentityCheckMiddleware. * Enable authentication to Mongo server. * Enable authentication to Redis. 2018-08-26 11:10:23 +00:00			`const mongoClient = new MongoClient({`
			`url: "mongodb://localhost:27017",`
			`database: "authelia",`
			`auth: {`
			`username: "authelia",`
			`password: "authelia"`
			`}`
			`}, new GlobalLoggerStub());`
Implement retry mechanism for broken connections to mongo (#258) Before this patch, when Authelia started, if Mongo was not up and running, Authelia failed to connect and never retried. Now, everytime Authelia faces a broken connection, it tries to reconnect during the next operation. 2018-08-19 14:51:36 +00:00			`const collectionFactory = CollectionFactoryFactory.createMongo(mongoClient);`
			`const userDataStore = new UserDataStore(collectionFactory);`

			`const generator = new TotpHandler(Speakeasy);`
			`secret = generator.generate("user", "authelia.com");`
			`return userDataStore.saveTOTPSecret(username, secret)`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`.then(function () {`
			`context.totpSecrets["REGISTERED"] = secret.base32;`
Implement retry mechanism for broken connections to mongo (#258) Before this patch, when Authelia started, if Mongo was not up and running, Authelia failed to connect and never retried. Now, everytime Authelia faces a broken connection, it tries to reconnect during the next operation. 2018-08-19 14:51:36 +00:00			`return mongoClient.close();`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`});`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`}`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`function declareNeedRegisteredUserHooks(username: string) {`
			`Before({ tags: "@need-registered-user-" + username, timeout: 15 * 1000 }, function () {`
			`return registerUser(this, username);`
			`});`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`After({ tags: "@need-registered-user-" + username, timeout: 15 * 1000 }, function () {`
			`this.totpSecrets["REGISTERED"] = undefined;`
			`return BluebirdPromise.resolve();`
			`});`
			`}`

			`function needAuthenticatedUser(context: any, username: string): BluebirdPromise<void> {`
			`return context.visit("https://login.example.com:8080/logout")`
			`.then(function () {`
			`return context.visit("https://login.example.com:8080/");`
			`})`
			`.then(function () {`
			`return registerUser(context, username);`
			`})`
			`.then(function () {`
			`return context.loginWithUserPassword(username, "password");`
			`})`
			`.then(function () {`
			`return context.useTotpTokenHandle("REGISTERED");`
			`})`
			`.then(function () {`
			`return context.clickOnButton("Sign in");`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00			`});`
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`}`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`function declareNeedAuthenticatedUserHooks(username: string) {`
			`Before({ tags: "@need-authenticated-user-" + username, timeout: 15 * 1000 }, function () {`
			`return needAuthenticatedUser(this, username);`
			`});`

			`After({ tags: "@need-authenticated-user-" + username, timeout: 15 * 1000 }, function () {`
			`this.totpSecrets["REGISTERED"] = undefined;`
			`return BluebirdPromise.resolve();`
			`});`
			`}`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`function declareHooksForUser(username: string) {`
			`declareNeedRegisteredUserHooks(username);`
			`declareNeedAuthenticatedUserHooks(username);`
			`}`
Add logs to detect redis connection issues earlier Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem 2017-09-21 20:07:34 +00:00
Fix unit and integration tests 2018-03-28 22:04:59 +00:00			`const users = ["harry", "john", "bob", "blackhat"];`
Add original nginx-ingress template to compare with the new one 2018-03-16 07:40:48 +00:00			`users.forEach(declareHooksForUser);`